PHP 4 phpinfo() XSS Vulnerability. Another reason not to run an open phpinfo() page on your server.
# 4th March 2007, 9:24 pm / php, phpinfo, xss, security
Related